Manualshelf

Specifications

ManualsBrandsCisco ManualsComputer equipment2955T 12 - Catalyst Switch
31323334353637383940
1-5
Catalyst 2950 and Catalyst 2955 Switch Software Configuration Guide
78-11380-07
Chapter 1 Overview
Features
IEEE 802.1Q trunking protocol on all ports for network moves, adds, and changes; management and
control of broadcast and multicast traffic; and network security by establishing VLAN groups for
high-security users and network resources
VLAN Membership Policy Server (VMPS) for dynamic VLAN membership
VLAN Trunking Protocol (VTP) pruning for reducing network traffic by restricting flooded traffic
to links destined for stations receiving the traffic
Dynamic Trunking Protocol (DTP) for negotiating trunking on a link between two devices and for
negotiating the type of trunking encapsulation (802.1Q) to be used
Voice VLAN for creating subnets for voice traffic from Cisco IP Phones
Security
Bridge protocol data unit (BPDU) guard for shutting down a Port Fast-configured port when an
invalid configuration occurs
Protected port option for restricting the forwarding of traffic to designated ports on the same switch
Password-protected access (read-only and read-write access) to management interfaces (CMS and
CLI) for protection against unauthorized configuration changes
Port security option for limiting and identifying MAC addresses of the stations allowed to access
the port
Port security aging to set the aging time for secure addresses on a port
Multilevel security for a choice of security level, notification, and resulting actions
MAC-based port-level security for restricting the use of a switch port to a specific group of source
addresses and preventing switch access from unauthorized stations (available only with the EI)
Terminal Access Controller Access Control System Plus (TACACS+), a proprietary feature for
managing network security through a TACACS server
IEEE 802.1X port-based authentication to prevent unauthorized devices from gaining access to the
network
IEEE 802.1X port-based authentication with VLAN assignment for restricting
802.1X-authenticated users to a specified VLAN (available only with the EI)
IEEE 802.1X port-based authentication with port security for authenticating the port and managing
network access for all MAC addresses, including that of the client (available only with the EI)
IEEE 802.1X port-based authentication with port security for controlling access to 802.1X
multiple-host ports
IEEE 802.1X port-based authentication with voice VLAN to permit an IP phone access to the voice
VLAN irrespective of the authorized or unauthorized state of the port
Standard and extended IP access control lists (ACLs) for defining security policies (available only
with the EI)